Cisco AMP for Endpoints API

GET /v1/indicators

Description

Returns a list of indicators.

Query Parameters

Name Type Example Values Description
limit Integer 10
offset Integer 20

Show Response Fields

Name Type Description
version String
metadata.links.self String
metadata.results.total Integer
metadata.results.current_item_count Integer
metadata.results.index Integer
metadata.results.items_per_page Integer
data Array
data[].name String
data[].description String
data[].guid GUID
data[].observed_compromises Integer
data[].severity String
data[].links.indicator String
Write
Preview

Examples

Fetch list of indicators

Fetch list of indicators

Request

Requires Authorization
GET /v1/indicators
Headers
accept: application/json
content-type: application/json
accept-encoding: identity
authorization: Basic FILTERED

cURL Edit, then copy and paste on your terminal

curl -X GET \
-H 'accept: application/json' \
-H 'content-type: application/json' \
-H 'accept-encoding: identity' \
--compressed -H 'Accept-Encoding: gzip, deflate' \
-u YOUR_API_CLIENT_ID \
'https://api.eu.amp.cisco.com/v1/indicators'

Response

Shortened for readability

content-type: application/json
transfer-encoding: chunked
status: 500 Internal Server Error
x-ratelimit-limit: 3000
x-ratelimit-reset: 870
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: strict-origin-when-cross-origin
x-ratelimit-remaining: 2784
x-permitted-cross-domain-policies: none
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-ratelimit-resetdate: 2022-03-18T11:55:11Z
{
  "version": "v1.2.0",
  "metadata": {
    "links": {
      "self": "https://api.eu.amp.cisco.com/v1/indicators"
    }
  },
  "data": {
  },
  "errors": [
    {
      "error_code": 500,
      "description": "Internal Server Error",
      "details": [
        "An unexpected error has occurred."
      ]
    }
  ]
}